0
我从我的上一个Get authenticated user entity Spring MVC创建此主题,我问了关于正确获取经过身份验证的用户实体的问题。我建议,如果我的UserDetailsService配置是正确的,则Principal对象(例如,在我的视图<sec:authentication property="principal.customFieldName" />
中)可以访问我的自定义字段。我的UserDetailsService配置是否正确完成此功能?UserDetailsService配置正确获取用户
@Service("userDetailsService")
public class UserDetailsServiceImpl implements UserDetailsService {
private static final Logger logger = Logger.getLogger(UserDetailsServiceImpl.class);
@Autowired
@Qualifier("hibernateUserDao")
private UserDAO userDAO;
@Override
@Transactional(readOnly = true)
public org.springframework.security.core.userdetails.UserDetails loadUserByUsername(String userName) throws UsernameNotFoundException, DataAccessException {
UserDetails user = userDAO.findByLogin(userName);
if (user == null) {
logger.error("User was not found! Input login: " + userName);
}
return buildUserFormUserEntity(user);
}
@Transactional(readOnly = true)
private org.springframework.security.core.userdetails.User buildUserFormUserEntity(UserDetails userDetails) {
boolean enableStatus = userDetails.isEnabled();
String userName = userDetails.getLogin();
String password = userDetails.getPassword();
boolean enabled = enableStatus;
boolean accountNonExpired = enableStatus;
boolean credentialsNonExpired = enableStatus;
boolean accountNonLocked = enableStatus;
Collection<GrantedAuthority> authorities = new ArrayList<GrantedAuthority>();
authorities.add(new SimpleGrantedAuthority(userDetails.getRole()));
User springSecurityUser = new User(userName, password, enabled, accountNonExpired, credentialsNonExpired, accountNonLocked, authorities);
return springSecurityUser;
}
public UserDAO getUserDAO() {
return userDAO;
}
public void setUserDAO(UserDAO userDAO) {
this.userDAO = userDAO;
}
}
但是我已经有了这个方法。不会干预旧的新方法吗? – sidlejinks 2013-03-06 15:03:14
对不起,看起来我错过了它。你的UserDetailsService类配置得很好。只有一个问题:你在哪里设置你的'customFieldName'属性的值? – 2013-03-06 15:37:13
对不起,但我应该在哪里设置?我不知道...... – sidlejinks 2013-03-06 15:40:35